Real-Time Flow Based Logging Solution
The Inventum Keylong Lawful Logging Platform allows large enterprises and service providers to collect, aggregate, store, parse, and analyze very large volumes of flow records generated by IP network equipment. ISPs, WANI PDOs, and telecom operators can now meet the lawful logging requirements of governments.
Multi protocol flow collection
Rapid log ingestion rate
IPDR creation via log co-relation with AAA or Billing System
Real-time analytics
Scalable flow storage to hundreds of servers
Export to external BI or Lawful Interception (LI) systems
Highly availability architecture
Flow Collection & Storage
Keylong supports a modular approach to log ingestion allowing plug-ins for accepting log formats including Syslog, IPFIX, and NetFlow-9 which are commonly used by routers, switches, CGN (CGNAT) systems, Broadband Network Gateways (BNG), and Wi-Fi controllers. Multiple log collectors may be used and they can be scaled linearly. Designed with support for the very high rate of incoming flows, Keylong uses big-data storage to log data that may be distributed geographically for endless scaling & availability.
Multi Vendor Support
Multiple log storage and co-relation formats are available out of the box. The Keylong solution also allows the customization of log attributes specific to vendors. Search capabilities can be enabled on all attributes.
NAT Logs
With over 20 Syslog RFC standard formats for NAT, Keylong is ready for use in the IPv6 transition and IPv4. Conservation projects include schemes such as SNAT and Deterministic NAT44.
Dashboard & Analytics
The Keylong web dashboard allows searching log data on any attribute(s). For systems used in recording access logs, Keylong allows searches on co-related session IPDR (or CDR) as configured at the time of log ingestion. that require co-relation Access to the dashboard is secured using a user roles & rights system. ACLs & TLS provides additional security. Keylong analytics leverage several big-data technologies to store, retrieve, archive, and index large volumes of flow data. This data is not locked into a proprietary format hence allowing customers to easily access logs in a standardized manner. Keylong also supports both real-time and non-real-time analytics.
Notifications
The flow processing engine can be configured to emit notifications, replicate flows, or direct and store flow in additional locations based on attribute(s) matching.
